| Page(s) : 1 ... 341 342 343 344 345 346 347 348 349 350 [351] 352 353 354 355 356 357 358 359 360 361 ... | Result(s) : 9852 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2010-02-28 | DSA-2004 | Debian | New samba packages fix several vulnerabilities |
| 2.6 | 2010-02-26 | CVE-2009-4652 | cve | The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote... |
| 3.5 | 2010-02-26 | CVE-2010-0716 | cve | _layouts/Upload.aspx in the Documents module in Microsoft SharePoint before 2010 uses URLs with the same hostname and port number for a web site's primary files and individ... |
| 3.3 | 2010-02-25 | CVE-2010-0424 | cve | The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron) allows local users to change the modification times of arbitrary files, and consequ... |
| 2.6 | 2010-02-24 | CVE-2010-0640 | cve | Cross-site scripting (XSS) vulnerability in CA eHealth Performance Manager 6.0.x through 6.2.x, when malicious HTML detection is disabled, allows remote attackers to inject arbi... |
| 3.3 | 2010-02-24 | CVE-2010-0118 | cve | Bournal before 1.4.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified temporary files associated with a --hack_the_gibson update check. |
| 2.1 | 2010-02-24 | CVE-2010-0119 | cve | Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the... |
| 3.5 | 2010-02-23 | CVE-2010-0697 | cve | Cross-site scripting (XSS) vulnerability in the iTweak Upload module 6.x-1.x before 6.x-1.2 and 6.x-2.x before 6.x-2.3 for Drupal allows remote authenticated users, with create ... |
| 1.9 | 2010-02-19 | CVE-2010-0106 | cve | The on-demand scanning in Symantec AntiVirus 10.0.x and 10.1.x before MR9, AntiVirus 10.2.x, and Client Security 3.0.x and 3.1.x before MR9, when Tamper protection is disabled, ... |
| 2.6 | 2010-02-18 | CVE-2010-0650 | cve | WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, allows remote attackers to bypass intended restrictions on popup windows via crafted use of a mouse click ev... |
| 2.1 | 2010-02-15 | CVE-2010-0622 | cve | The wake_futex_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance (PI) futex, whic... |
| 3.5 | 2010-02-11 | CVE-2010-0606 | cve | Cross-site scripting (XSS) vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users to inject arbitrary web script or HTML via the f param... |
| 1.9 | 2010-02-08 | CVE-2003-1588 | cve | Sun Cluster 2.2, when HA-Oracle or HA-Sybase DBMS services are used, stores database credentials in cleartext in a cluster configuration file, which allows local users to obtain... |
| 2.6 | 2010-02-05 | CVE-2003-1577 | cve | Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text i... |
| 2.6 | 2010-02-05 | CVE-2003-1581 | cve | The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an HTTP request in con... |
| 2.6 | 2010-02-05 | CVE-2003-1582 | cve | Microsoft Internet Information Services (IIS) 6.0, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an... |
| 1.5 | 2010-02-05 | CVE-2009-2752 | cve | IBM WebSphere Commerce 7.0 does not properly encrypt data in a database, which makes it easier for local users to obtain sensitive information by defeating cryptographic protect... |
| 2.1 | 2010-02-04 | CVE-2010-0547 | cve | client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which... |
| 3.3 | 2010-02-02 | DSA-1989 | Debian | New fuse packages fix denial of service |
| 3.5 | 2010-01-28 | CVE-2010-0460 | cve | Multiple cross-site scripting (XSS) vulnerabilities in staff/index.php in Kayako SupportSuite 3.60.04 and earlier allow remote authenticated users to inject arbitrary web script... |
| Page(s) : 1 ... 341 342 343 344 345 346 347 348 349 350 [351] 352 353 354 355 356 357 358 359 360 361 ... | Result(s) : 9852 |
